Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/5NF96dJo59jlfDtUWQQQWwSBLsE.roa
File: 5NF96dJo59jlfDtUWQQQWwSBLsE.roa (raw, json)
Hash identifier: 1cpT9GK+Ij3sve+oATodSG9XESDVcnGjNeryKmMMFWs=
Subject key identifier: E4:D1:7D:E9:D2:68:E7:D8:E5:7C:3B:54:59:04:10:5B:04:81:2E:C1
Certificate issuer: /CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Certificate serial: 018852951569082BEE16A1858E6806524F94
Authority key identifier: 13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/5NF96dJo59jlfDtUWQQQWwSBLsE.roa
Signing time: Thu 25 May 2023 11:04:41 +0000
ROA not before: Thu 25 May 2023 11:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8456
IP address blocks: 161.9.144.0/21 maxlen: 21
161.9.147.0/24 maxlen: 24
161.9.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 21:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:95:15:69:08:2b:ee:16:a1:85:8e:68:06:52:4f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Validity
Not Before: May 25 11:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4d17de9d268e7d8e57c3b545904105b04812ec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f2:15:58:8e:fa:93:e0:70:7b:f2:72:db:e0:
ad:d9:18:1e:cc:7c:cf:25:67:81:77:d4:c4:83:ae:
e1:ce:b5:fa:df:82:d3:6a:23:48:66:b5:4c:7c:9a:
8c:32:6a:86:a2:66:e2:ab:0f:e3:f8:36:27:20:ef:
61:ca:88:fa:e9:66:63:e2:0b:64:e9:de:34:6f:5a:
a8:d7:82:47:e8:90:57:14:85:6c:69:91:a7:5b:d3:
76:4e:33:bf:e3:84:d3:07:44:7d:0e:24:b1:f4:9c:
84:50:01:b9:bd:54:d8:ca:55:3f:c1:b8:f6:df:1a:
73:d7:e7:5b:35:83:2a:89:a9:f2:64:3a:7c:56:fb:
ca:cb:2b:b1:aa:06:80:3a:d6:0c:6b:21:b9:ad:95:
a3:b2:a1:0a:a1:e2:28:0e:8d:46:18:aa:89:c1:23:
f6:8d:26:e6:ef:a4:fd:10:67:7b:06:82:a2:93:50:
9a:48:cc:ee:7c:71:a5:21:27:b6:e2:b4:b3:fb:12:
3f:4e:c9:a8:ad:9c:c0:39:7e:0e:4d:92:83:b3:d4:
f0:71:dd:c6:cc:98:5d:bb:02:7a:6d:a8:4f:b8:6a:
2b:99:b8:95:d1:a6:e1:69:6d:c6:17:77:c9:cb:d2:
bc:ad:cd:8e:2f:68:d4:40:13:97:6d:fe:f9:17:98:
2d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D1:7D:E9:D2:68:E7:D8:E5:7C:3B:54:59:04:10:5B:04:81:2E:C1
X509v3 Authority Key Identifier:
keyid:13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/5NF96dJo59jlfDtUWQQQWwSBLsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/E-p4so8FT3L1Imrj7EVJgO0qEMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.9.144.0/21
161.9.154.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:1f:ee:05:bf:47:23:00:16:9a:f6:f5:77:90:5c:b2:3e:fa:
16:69:38:7c:41:5a:39:3a:19:a2:d3:94:77:34:65:73:78:3b:
db:f0:08:20:0d:9f:f2:71:b2:f7:19:d6:d5:11:b6:6e:89:ae:
2e:dd:66:93:8b:12:cd:cc:e9:e1:f4:c5:82:cb:51:30:c2:4b:
03:c4:2c:12:7e:99:94:46:95:f4:21:6c:a4:a7:2d:f3:25:2e:
a0:6c:c4:95:95:a3:39:cf:fb:be:46:ff:ff:3c:5b:ce:d7:a2:
22:aa:ee:f9:02:78:da:64:c8:34:be:7d:5c:d9:93:2d:b1:04:
cd:ea:64:a1:13:0c:9d:85:47:bc:5f:08:59:6d:d5:42:3d:4d:
0d:db:db:e6:74:2a:91:0d:40:10:4c:32:76:71:8d:a4:f6:6a:
b4:d1:6c:f4:05:7b:f1:54:8e:69:e9:3b:ac:de:20:1b:fe:10:
61:59:e3:93:92:dd:45:a0:df:f2:b2:1c:bc:be:07:a5:4f:a6:
ea:fa:40:f4:f1:73:27:e2:28:5b:aa:22:9c:78:03:cd:18:b8:
8f:99:4c:25:94:98:a7:1c:30:3b:e2:82:23:05:6f:32:8e:8e:
29:c0:79:ad:e0:c2:59:16:65:3a:00:e0:5f:cf:49:33:60:d5:
2b:5b:c9:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org